Senior IAM Platform Engineer

About The Role

We are looking for a Senior IAM Platform Engineer to design, build, and scale enterprise-grade Identity & Access Management (IAM) systems. This role focuses on secure authentication, authorization, and federation across large-scale distributed environments.

You will work on production IAM platforms, solving real-world challenges around SSO, MFA, identity federation, and access control, while ensuring high availability and security at scale.

Key Responsibilities

• Design and implement IAM solutions using platforms like ForgeRock, Okta, Keycloak, or PingFederate
• Build and manage authentication and authorization flows using OAuth 2.0, OpenID Connect, and SAML
• Develop and maintain SSO, MFA, and policy-based access control systems
• Integrate IAM solutions across multiple enterprise applications
• Troubleshoot and resolve IAM-related production issues (token failures, session management, federation issues, etc.)
• Collaborate with application and infrastructure teams to ensure secure system design

Infrastructure & Cloud

• Design and manage infrastructure using Terraform (Infrastructure as Code)
• Work in AWS multi-account environments, including IAM roles and cross-account access
• Contribute to scalable and secure cloud architecture

CI/CD & Automation

• Build and maintain CI/CD pipelines (Jenkins or similar tools)
• Support automated deployments and environment consistency
• Work with modern deployment workflows and integrations

Required Skills

• Strong experience in Identity & Access Management (IAM) in production environments
• Hands-on experience with at least one: ForgeRock, Okta, Keycloak, or PingFederate
• Solid understanding of: OAuth 2.0
• Solid understanding of: OpenID Connect
• Solid understanding of: SAML 2.0
• Experience with AWS and cloud-native architectures
• Strong experience with Terraform
• Backend development experience in Java (Spring Boot preferred)

Good to Have

• Experience with Terraform Enterprise (TFE) or policy frameworks
• Exposure to Go or Python for automation
• Experience with Spinnaker or advanced CI/CD orchestration
• Understanding of IAM system scalability and failure handling

What We Re Looking For

• Engineers who have worked on real-world IAM systems at scale
• Strong problem solvers who can debug complex authentication and authorization issues
• Ability to own systems end-to-end from design to production
• Comfortable working in large enterprise environments